CVE-2008-5502

CVE-2008-5502 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The layout engine in Mozilla Firefox 3.x before 3.0.5, Thunderbird 2.x before 2.0.0.19, and SeaMonkey 1.x before 1.1.14 allows remote attackers to cause a denial of service (crash) via vectors that trigger memory corruption, related to the GetXMLEntity and FastAppendChar functions.

Learn more about our Cis Benchmark Audit For Mozilla Firefox.